Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2023/04/24 6:30 p.m.7 views

CVE-2023-0420 Custom Post Type and Taxonomy GUI Manager <= 1.1 - Stored XSS via CSRF

The Custom Post Type and Taxonomy GUI Manager WordPress plugin through 1.1 does not have CSRF, and is lacking sanitising as well as escaping in some parameters, allowing attackers to make a logged in admin put Stored Cross-Site Scripting payloads via CSRF...

5AI score0.00229EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/04/24 6:30 p.m.21 views

CVE-2023-0420 Custom Post Type and Taxonomy GUI Manager <= 1.1 - Stored XSS via CSRF

The Custom Post Type and Taxonomy GUI Manager WordPress plugin through 1.1 does not have CSRF, and is lacking sanitising as well as escaping in some parameters, allowing attackers to make a logged in admin put Stored Cross-Site Scripting payloads via CSRF...

5.2AI score0.00229EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/04/24 12:0 a.m.3 views

PT-2023-16258 · WordPress · Custom Post Type/Taxonomy Gui Manager

Name of the Vulnerable Software and Affected Versions: Custom Post Type and Taxonomy GUI Manager WordPress plugin version 1.1 Description: The issue is related to the lack of CSRF protection and insufficient sanitizing and escaping of parameters, allowing attackers to make a logged-in admin put...

4.8CVSS5.7AI score0.00229EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/04/24 12:0 a.m.3 views

WordPress plugin Custom Post Type and Taxonomy GUI Manager 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

4.8CVSS5.8AI score0.00229EPSS
Exploits1References2
Rows per page
Query Builder